-
21:00
(UTC +05:30)
Lists (1)
Sort Name ascending (A-Z)
Stars
The XSS Hunter service - a portable version of XSSHunter.com
An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.
Automatically look for paramater reflections in the HTTP response
Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
PortSwigger / aes-killer
Forked from Ebryx/AES-KillerBurp Plugin to decrypt AES encrypted traffic on the fly
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …
Run your own GPTChat Telegram bot, with a single command!
Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
Top disclosed reports from HackerOne
Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
Mastering Ethereum, by Andreas M. Antonopoulos, Gavin Wood
A small tool that extracts relative URLs from a file.
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
BurpFlow is a powerful tool for bug bounty hunters and penetration testers to load recon data into burp suite.
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Timewarrior - Commandline Time Tracking and Reporting
0xd0m7 / fresh-resolvers
Forked from BonJarber/fresh-resolversList of fresh DNS resolvers updated daily
This extension will help you to detect GET/POST based XSS vulnerability in any website easily
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.